RackSwitch G8000 Application Guide

ACL configuration examples

Example 1

Use this configuration to block traffic to a specific host. All traffic that ingresses port 1 is denied if it is destined for the host at IP address 100.10.1.1

1.Configure an Access Control List.

RS G8000

(config)# access-list ip standard 1

RS

G8000

(config-std-nacl)# deny

any host 100.10.1.1

RS

G8000

(config-std-nacl)# exit

 

2. Assign the ACL to port 1.

RS G8000

(config)# interface port 1

RS

G8000

(config-if)#

ip access-group 1 in

RS

G8000

(config-if)#

exit

3. Verify the configuration.

RS G8000# show access-list 1

 

Standard IP Access List 1

 

----------------------------

: 0.0.0.0

Source IP address

Source IP address mask

: 0.0.0.0

Destination IP address

: 100.10.1.1

Destination IP address mask

: 255.255.255.255

In Port List

: 1

Out Port List

: NULL

Filter Action

: Deny

User Priority

: Nil

Statistics

: Disabled

Status

: Active

100 „ Chapter 6: Quality of Service

BMD00041, November 2008

Page 100
Image 100
Blade ICE G8000 manual ACL configuration examples, Example, Configure an Access Control List, Assign the ACL to port